Certificates expired, cluster down, any way to renew ?

[mcorries]

Haven't started my GCP HA Kubernetes cluster for a few months and during this period the certificates have expired. Etcd down, kubectl doesn't authenticate, so stuck and can't seem to find any pointers on internet for renewing certificates for KTHW installation, not kubeadm.

If I install kubeadm and issue certificate renew all will this resolve the issue? Or will I have to regenerate everything by hand with cfssl and copy to masters and worker nodes as in guide and restart all the services and pray all the pods and control plane comes up as before? Not sure about tokens and secrets and if they need to be renewed :/

I'm running Kubernetes version 1.21.5. etcd 3.4.16, containerd 1.4.4 I have a journalctl log file i could attach if needed.

[mcorries]

@kelseyhightower Perhaps you have some advice?